$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e32302e33322e302f32322d3234203d3e203535393936.roa File: 3130332e32302e33322e302f32322d3234203d3e203535393936.roa (raw, json) Hash identifier: E8mO6jGZs71OoUIuhfb2X834G6ZyfeMsM+wvUk9EGWA= Subject key identifier: 83:6B:75:BD:C7:8F:02:E8:FD:AE:F4:93:9A:A4:F4:1E:CC:AA:AA:66 Certificate issuer: /CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Certificate serial: 1AD0B81572A0BC94492CA9B961183502798E2568 Authority key identifier: 5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e32302e33322e302f32322d3234203d3e203535393936.roa Signing time: Thu 07 May 2026 15:51:38 +0000 ROA not before: Thu 07 May 2026 15:46:38 +0000 ROA not after: Thu 06 May 2027 15:51:38 +0000 asID: 55996 IP address blocks: 103.20.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:d0:b8:15:72:a0:bc:94:49:2c:a9:b9:61:18:35:02:79:8e:25:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF8086D3EFA176487A1C376B7BCCF3E83AB2339 Validity Not Before: May 7 15:46:38 2026 GMT Not After : May 6 15:51:38 2027 GMT Subject: CN=836B75BDC78F02E8FDAEF4939AA4F41ECCAAAA66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f0:4e:86:07:78:bc:78:be:9a:90:2b:12:7f: 60:77:77:6a:03:ea:f8:36:51:37:4c:e0:c7:6c:22: 72:d4:5f:a8:fe:fb:94:26:09:60:82:04:9f:e5:f3: c6:15:95:fb:cd:81:a0:10:12:bd:a1:ce:9c:24:66: 11:7c:31:84:6f:54:15:f4:0f:eb:38:ec:db:00:7f: b3:87:49:17:ef:f7:1e:a7:49:4d:72:c5:e0:92:5c: c1:1d:b1:2b:77:1d:5f:92:a8:da:89:bf:3a:5b:2e: 8c:7d:9d:2a:c0:4c:fd:86:3d:c8:e0:e9:12:c0:b4: fc:8f:f2:d4:a2:49:68:6c:c1:26:45:ee:9f:f3:d3: c1:b9:e0:b9:99:fb:d6:c0:42:37:3c:04:54:e4:1d: 75:c0:22:be:db:43:28:86:d7:08:80:c5:8f:86:77: 1b:15:97:ac:fd:cf:6d:7a:a3:17:bf:a8:64:b1:0b: 65:63:d3:35:7c:f0:f4:4c:5d:34:2c:83:c0:34:f3: 31:6c:b5:83:7f:a8:51:39:18:f8:f3:55:6d:df:ad: 22:c6:c6:63:ca:a7:5a:48:c1:8d:19:d0:4e:93:2f: f2:d7:85:af:b8:e7:82:c7:26:32:d0:1a:9b:72:58: 9e:bf:38:5b:60:b1:24:a7:13:d3:56:c3:0a:91:c4: a0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:6B:75:BD:C7:8F:02:E8:FD:AE:F4:93:9A:A4:F4:1E:CC:AA:AA:66 X509v3 Authority Key Identifier: keyid:5D:F8:08:6D:3E:FA:17:64:87:A1:C3:76:B7:BC:CF:3E:83:AB:23:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/5DF8086D3EFA176487A1C376B7BCCF3E83AB2339.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1065577241947602945/0/3130332e32302e33322e302f32322d3234203d3e203535393936.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.20.32.0/22 Signature Algorithm: sha256WithRSAEncryption be:a5:49:cf:5c:ba:4a:06:4b:5b:4f:51:54:97:23:1d:2f:4d: a7:c0:88:3a:b8:c0:49:0f:35:7a:17:ae:3d:b7:7a:66:6e:03: c6:cd:bf:c4:4e:ed:45:fc:0f:cc:00:96:05:5c:61:ab:d8:a9: 01:26:43:39:cc:5b:f1:3e:70:09:14:28:44:cd:60:67:ef:f6: c8:ac:e5:b1:a5:5c:30:3c:f8:2c:b6:a7:67:5a:d6:6d:9a:37: a1:d9:60:87:07:ba:7e:d9:7b:28:d1:1a:19:1d:ab:0f:ee:81: 65:64:dd:3e:97:f2:1e:f5:73:8d:a7:ff:42:46:e3:aa:3e:7b: f7:10:fd:02:42:d0:c2:2c:57:27:08:aa:0a:1b:e6:fc:5e:2d: 93:12:9d:ae:dd:60:be:16:1c:f4:c1:bd:25:1e:d3:18:21:2b: ba:ca:1d:09:20:df:6c:1a:15:92:30:39:e7:af:8c:e1:ab:b7: 62:b4:62:e6:7a:1b:3d:7a:50:6c:f3:7b:69:03:b9:c3:a0:aa: 1d:c2:f8:c3:5e:6b:fd:79:c9:27:2e:e0:e1:1e:f1:63:f7:51: ad:73:f6:22:81:29:78:8f:de:40:80:6c:3e:fb:32:3f:8d:fe: 25:d1:6c:0d:1d:85:f2:aa:59:92:4a:1a:c4:17:b6:b9:16:3c: 0a:60:c8:b8 -----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgIUGtC4FXKgvJRJLKm5YRg1AnmOJWgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4 M0FCMjMzOTAeFw0yNjA1MDcxNTQ2MzhaFw0yNzA1MDYxNTUxMzhaMDMxMTAvBgNV BAMTKDgzNkI3NUJEQzc4RjAyRThGREFFRjQ5MzlBQTRGNDFFQ0NBQUFBNjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCu8E6GB3i8eL6akCsSf2B3d2oD 6vg2UTdM4MdsInLUX6j++5QmCWCCBJ/l88YVlfvNgaAQEr2hzpwkZhF8MYRvVBX0 D+s47NsAf7OHSRfv9x6nSU1yxeCSXMEdsSt3HV+SqNqJvzpbLox9nSrATP2GPcjg 6RLAtPyP8tSiSWhswSZF7p/z08G54LmZ+9bAQjc8BFTkHXXAIr7bQyiG1wiAxY+G dxsVl6z9z216oxe/qGSxC2Vj0zV88PRMXTQsg8A08zFstYN/qFE5GPjzVW3frSLG xmPKp1pIwY0Z0E6TL/LXha+454LHJjLQGptyWJ6/OFtgsSSnE9NWwwqRxKDfAgMB AAGjggIRMIICDTAdBgNVHQ4EFgQUg2t1vcePAuj9rvSTmqT0HsyqqmYwHwYDVR0j BBgwFoAUXfgIbT76F2SHocN2t7zPPoOrIzkwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA2 NTU3NzI0MTk0NzYwMjk0NS8wLzVERjgwODZEM0VGQTE3NjQ4N0ExQzM3NkI3QkND RjNFODNBQjIzMzkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvNURGODA4NkQzRUZBMTc2NDg3QTFDMzc2QjdCQ0NGM0U4M0FCMjMzOS5jZXIw gYoGCCsGAQUFBwELBH4wfDB6BggrBgEFBQcwC4ZucnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDY1NTc3MjQxOTQ3NjAyOTQ1LzAvMzEzMDMzMmUzMjMw MmUzMzMyMmUzMDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzNTM5MzkzNi5yb2EwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAmcUIDANBgkqhkiG9w0BAQsFAAOCAQEAvqVJz1y6SgZLW09RVJcjHS9Np8CI OrjASQ81eheuPbd6Zm4Dxs2/xE7tRfwPzACWBVxhq9ipASZDOcxb8T5wCRQoRM1g Z+/2yKzlsaVcMDz4LLanZ1rWbZo3odlghwe6ftl7KNEaGR2rD+6BZWTdPpfyHvVz jaf/Qkbjqj579xD9AkLQwixXJwiqChvm/F4tkxKdrt1gvhYc9MG9JR7TGCErusod CSDfbBoVkjA556+M4au3YrRi5nobPXpQbPN7aQO5w6CqHcL4w15r/XnJJy7g4R7x Y/dRrXP2IoEpeI/eQIBsPvsyP43+JdFsDR2F8qpZkkoaxBe2uRY8CmDIuA== -----END CERTIFICATE-----Generated at Wed May 13 08:51:54 2026 by rpki-client